Being popular on here isn't a compliment.

You're the only one squealing about anything lol Nobody is saying that people shouldn't be careful about their finances. That hasn't been said once in this thread.

I'm saying that Canonical does bear some responsibility for hosting and distributing a malicious package. Obviously the person who made the package is most at fault but Canonical is easily the second most at fault.

This isn't just about financial apps. Obviously any application that asks to put in sensitive information can use it maliciously but that's not the only way that applications can act maliciously.

You're too old to be this 4chan-brained.

You're such a cool, angsty, anti-hero.

I think you meant "Squall more"

tumblr_lpn8ebnZkV1qb8m44o1_400.jpg

We forced it on you, it's even glitchy sometimes, well now just forgive me. We can't give you both freedom and security.

More specifically even the best sandbox isn't going to protect against the user entering information into the application, and it's not unusual for an application to phone home with data from time to time.

Really only banning non-source available and proprietary applications from the snap store would work, but the whole point of snaps is the provide a stable environment to distribute proprietary applications...

Thankfully Snap doesn't allow third party repositories, so there is no way for the user to shoot themselves by adding a malicious third party repo! \s

Anyways, this actually highlights one of the problems of both Flatpak and Snap. Perfect sandboxing would protect the user even if they install a malicious app. But since apps can choose their own permissions all the sandboxing in the world wont do anything if the app just decides that it wants access to everything. The better alternative is an Android/iOS-like permission system, where the permissions are asked at runtime and presented front-and-center to the user ("why does this timer app want access to all my files???").

Of course one can revoke permissions after installing and before running an app (at least on Flatpak, I assume Snap also has a system for this). But most users will never realize and/or bother with doing that.

LMAO I just noticed this. What a piss poor attempt at saying you aren't a conservative. In this one sentence you're giving away that you're not a leftist. I'll leave it to you to figure out how.

I agree that it's strange that Flatpak's don't prompt you for permissions. I don't even see anyplace on Flathub that tells you what permissions each app needs.

No. Never lol